GeneralInformation

Hostnames	ipm.id
Domains	ipm.id
Country	Indonesia
City	Jakarta
Organization	PT Inti Bangun Sejahtera, tbk
ISP	PT Inti Bangun Sejahtera, tbk
ASN	AS133811

WebTechnologies

JavaScript frameworks

AngularJS

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

CVE-2023-44487	The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.
CVE-2021-3618	5.8ALPACA is an application layer protocol content confusion attack, exploiting TLS servers implementing different protocols but using compatible certificates, such as multi-domain or wildcard certificates. A MiTM attacker having access to victim's traffic at the TCP/IP layer can redirect traffic from one subdomain to another, resulting in a valid TLS session. This breaks the authentication of TLS and cross-protocol attacks may be possible where the behavior of one protocol service may compromise the other at the application layer.
CVE-2021-23017	6.8A security issue in nginx resolver was identified, which might allow an attacker who is able to forge UDP packets from the DNS server to cause 1-byte memory overwrite, resulting in worker process crash or potential other impact.

OpenPorts

22 80 443 8008 8081 8787 9000 9001 9002 9100 28015

-1629709462 | 2024-04-22T08:31:03.377382

22 / tcp

SSH-2.0-OpenSSH_8.2p1 Ubuntu-4ubuntu0.11
Key type: ssh-rsa
Key: AAAAB3NzaC1yc2EAAAADAQABAAABgQCqnHK2ioqIZCWEkmgt0DzJNu2JMQiqxNcjzqCJpPb9Z+i9
/44Mjutf0lc07JGCcdaZ3Xb9Xts7WnQ5174EbdOLXOKmEZugOA2AVkEW2ueljsjU5c3qPhDCcptV
fJDK45ezu9ml/QSXp5c743Dv1XD+BaxM6NLnvIBIEpQbViPwHskLAdVREnIH3lXKKZ6ASRcBfBax
qNUp5PrSju0ftj2vfLAM5fGrd+yvJ4xwKNcAbefJjL7KiM1tX+gitZC4dEyUvgE64VVO+6gj2wAo
zWMXjz4gvXc2o35An9ZTlndC0JnxTzgyTTmXTGU8eEwlpOHK/NG9g3LDU9OcKsOME0FdyRYlWAZb
Ag+REHhw5KDQZiFrHBp1Ky7m7SnTbYJs3xkgqtyeeMbfY/6OpwtHuRk90vbCSZp2MmPIpI/XxNKS
9VX/Ay09dRu8kcLA07ujB0ghyUQgHfB8zNE12hwY3VYSWiDQ9sM8oW7cGjOj8DhgXTpWYQVs8Lli
9ZSk6b+NQJs=
Fingerprint: f1:43:4d:c1:48:55:aa:86:3e:08:3c:df:dd:79:a9:65

Kex Algorithms:
	curve25519-sha256
	curve25519-sha256@libssh.org
	ecdh-sha2-nistp256
	ecdh-sha2-nistp384
	ecdh-sha2-nistp521
	diffie-hellman-group-exchange-sha256
	diffie-hellman-group16-sha512
	diffie-hellman-group18-sha512
	diffie-hellman-group14-sha256
	kex-strict-s-v00@openssh.com

Server Host Key Algorithms:
	rsa-sha2-512
	rsa-sha2-256
	ssh-rsa
	ecdsa-sha2-nistp256
	ssh-ed25519

Encryption Algorithms:
	chacha20-poly1305@openssh.com
	aes128-ctr
	aes192-ctr
	aes256-ctr
	aes128-gcm@openssh.com
	aes256-gcm@openssh.com

MAC Algorithms:
	umac-64-etm@openssh.com
	umac-128-etm@openssh.com
	hmac-sha2-256-etm@openssh.com
	hmac-sha2-512-etm@openssh.com
	hmac-sha1-etm@openssh.com
	umac-64@openssh.com
	umac-128@openssh.com
	hmac-sha2-256
	hmac-sha2-512
	hmac-sha1

Compression Algorithms:
	none
	zlib@openssh.com

589765266 | 2024-04-28T23:34:10.212288

80 / tcp

HTTP/1.1 301 Moved Permanently
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 28 Apr 2024 23:34:08 GMT
Content-Type: text/html
Content-Length: 178
Connection: keep-alive
Location: https://103.52.17.22/

-566498224 | 2024-04-29T01:10:19.013219

443 / tcp

HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Mon, 29 Apr 2024 01:10:18 GMT
Content-Type: text/html
Content-Length: 845
Last-Modified: Wed, 20 Apr 2022 08:14:02 GMT
Connection: keep-alive
ETag: "625fc0ca-34d"
Strict-Transport-Security: max-age=31536000
X-Frame-Options: DENY
Accept-Ranges: bytes

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            46:55:56:f9:b6:07:39:69:ef:74:e0:bc:49:57:3d:c2:1d:26:8c:62
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=US, O=CloudFlare, Inc., OU=CloudFlare Origin SSL Certificate Authority, L=San Francisco, ST=California
        Validity
            Not Before: Apr 13 05:47:00 2022 GMT
            Not After : Apr  9 05:47:00 2037 GMT
        Subject: O=CloudFlare, Inc., OU=CloudFlare Origin CA, CN=CloudFlare Origin Certificate
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:a2:71:0c:86:41:0a:5b:35:db:a5:bb:e5:56:3c:
                    93:c9:30:41:c3:b8:e0:d0:65:5c:af:ac:fe:2d:e2:
                    ee:69:20:ed:7e:88:70:32:d4:6b:16:47:6d:de:12:
                    ba:1b:a2:8e:b0:9c:05:f3:e6:cf:2c:6e:d2:f5:9e:
                    ef:7e:52:91:0d:48:2b:76:65:49:20:11:dd:33:41:
                    9c:ca:6e:ec:74:60:93:77:fd:b1:51:b8:81:30:bc:
                    93:b0:84:3c:64:77:6b:4c:69:80:05:37:09:62:eb:
                    2b:47:be:0b:76:19:98:b8:1d:ee:f2:32:ba:ff:f0:
                    8e:7a:ae:68:39:79:55:5c:b0:c1:51:7f:05:66:84:
                    2e:2d:70:84:f5:43:30:1a:a5:9d:e9:b8:ea:06:91:
                    d8:40:f9:d9:34:fa:2e:99:2e:fe:b9:27:7d:26:31:
                    3c:ba:f0:ce:f9:66:43:d3:89:46:2f:8d:de:a2:18:
                    f8:68:44:3d:6f:f2:cf:eb:c2:f2:69:29:6b:b4:b1:
                    ca:00:5e:71:0a:e1:d4:6e:df:82:e6:d6:22:ed:85:
                    e0:8a:fb:b3:01:34:e6:34:0a:07:ea:13:ef:99:ab:
                    b2:2f:e6:23:3e:0c:a2:07:c5:fc:82:1c:fb:45:69:
                    d1:34:fa:1a:e2:9a:e9:1f:2d:11:f9:66:4f:8a:8e:
                    07:2d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            X509v3 Extended Key Usage: 
                TLS Web Client Authentication, TLS Web Server Authentication
            X509v3 Basic Constraints: critical
                CA:FALSE
            X509v3 Subject Key Identifier: 
                25:81:CF:21:6A:1D:87:C6:25:4A:48:D0:DC:E1:12:11:7D:B6:E8:29
            X509v3 Authority Key Identifier: 
                24:E8:53:57:5D:7C:34:40:87:A9:EB:94:DB:BA:E1:16:78:FC:29:A4
            Authority Information Access: 
                OCSP - URI:http://ocsp.cloudflare.com/origin_ca
            X509v3 Subject Alternative Name: 
                DNS:*.ipm.id, DNS:ipm.id
            X509v3 CRL Distribution Points: 
                Full Name:
                  URI:http://crl.cloudflare.com/origin_ca.crl
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        09:a3:e3:03:ff:8e:87:43:f8:5b:f6:a3:71:bd:7b:41:d1:b9:
        37:a9:80:c2:a8:eb:e4:af:b6:f1:e5:fc:67:56:c3:93:a4:bc:
        43:60:11:4e:a6:8c:1e:5b:30:cc:e6:08:7f:ed:05:16:81:f5:
        69:f0:18:02:08:11:6a:99:30:af:9f:e7:d7:d1:f6:dc:b4:1c:
        64:bb:e8:14:5e:47:6f:2d:0b:f4:14:95:0a:7f:35:41:95:00:
        d9:fe:f0:2d:4c:b2:1f:75:a3:b8:ff:aa:b5:28:37:9f:70:d0:
        8d:54:8c:d0:6b:20:e4:53:80:20:81:11:f8:0f:cf:e8:ad:ff:
        38:fa:45:f2:e6:f1:3f:2c:7d:ed:e8:76:42:c1:2e:88:63:34:
        1e:f0:dc:d2:f8:9b:97:78:99:3d:3c:6d:a2:b0:36:bf:a7:dd:
        60:4c:7a:1e:1f:8a:a0:ac:c0:ee:66:89:a4:8a:e8:6f:0c:61:
        4e:36:5c:11:6b:0d:f9:63:5c:61:3c:c5:25:c3:be:2e:c6:6a:
        ec:5d:d2:79:d5:1c:9d:01:b8:d1:9e:4d:2e:88:f7:29:48:54:
        03:75:84:12:f0:03:de:48:17:6f:a5:e0:bb:02:6b:9c:9e:1c:
        26:c9:e8:bb:23:19:89:fb:8a:e2:99:6c:38:63:c3:69:e5:0e:
        fd:85:4a:2d

530241483 | 2024-04-20T07:08:58.142544

8008 / tcp

HTTP/1.1 302 Found
Location: https://103.52.17.22:8015/
Connection: close
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Content-Security-Policy: frame-ancestors 'self'

1546267577 | 2024-04-27T20:03:08.772669

8081 / tcp

HTTP/1.1 200 OK
content-type: text/html
expires: Fri, 28 Apr 2023 20:03:08 GMT

<!DOCTYPE html>
<html>
    <head>
        <meta charset="utf-8">
        <title>RethinkDB Administration Console</title>
        <meta name="description" content="">
        <meta name="author" content="">
        <meta http-equiv="no-cache">
        <meta http-equiv="Expires" content="-1">
        <meta http-equiv="Cache-Control" content="no-cache">

        <link rel="stylesheet" type="text/css" href="cluster.css?v=2.4.0-8-g07da06-dirty" />
        <link rel="stylesheet" type="text/css" href="js/chosen/chosen.css?v=2.4.0-8-g07da06-dirty" />
        <link rel="stylesheet" type="text/css" href="js/codemirror/codemirror.css?v=2.4.0-8-g07da06-dirty" />
        <link rel="stylesheet" type="text/css" href="js/codemirror/ambiance.css?v=2.4.0-8-g07da06-dirty" />
        <link rel="stylesheet" type="text/css" href="fonts/stylesheet.css?v=2.4.0-8-g07da06-dirty" />
        <link rel="stylesheet" type="text/css" href="js/nanoscroller/nanoscroller.css?v=2.4.0-8-g07da06-dirty" />

        <script type="text/javascript" src="js/jquery-1.7.2.min.js?v=2.4.0-8-g07da06-dirty"></script>
        <script type="text/javascript" src="js/ZeroClipboard.min.js?v=2.4.0-8-g07da06-dirty"></script>
        <script type="text/javascript" src="js/underscore-min.js?v=2.4.0-8-g07da06-dirty"></script>
        <script type="text/javascript" src="js/backbone.js?v=2.4.0-8-g07da06-dirty"></script>
        <script type="text/javascript" src="js/bootstrap/bootstrap-modal.js?v=2.4.0-8-g07da06-dirty"></script>
        <script type="text/javascript" src="js/bootstrap/bootstrap-alert.js?v=2.4.0-8-g07da06-dirty"></script>
        <script type="text/javascript" src="js/bootstrap/bootstrap-typeahead.js?v=2.4.0-8-g07da06-dirty"></script>
        <script type="text/javascript" src="js/bootstrap/bootstrap-button.js?v=2.4.0-8-g07da06-dirty"></script>
        <script type="text/javascript" src="js/bootstrap/bootstrap-dropdown.js?v=2.4.0-8-g07da06-dirty"></script>
        <script type="text/javascript" src="js/bootstrap/bootstrap-tooltip.js?v=2.4.0-8-g07da06-dirty"></script>
        <script type="text/javascript" src="js/bootstrap/bootstrap-popover.js?v=2.4.0-8-g07da06-dirty"></script>
        <script type="text/javascript" src="js/jquery.form.js?v=2.4.0-8-g07da06-dirty"></script>
        <script type="text/javascript" src="js/nanoscroller/jquery.nanoscroller.min.js?v=2.4.0-8-g07da06-dirty"></script>
        <script type="text/javascript" src="js/jquery.color.js?v=2.4.0-8-g07da06-dirty"></script>
        <script type="text/javascript" src="js/jquery.timeago.js?v=2.4.0-8-g07da06-dirty"></script>
        <script type="text/javascript" src="js/date-en-US.js?v=2.4.0-8-g07da06-dirty"></script>
        <script type="text/javascript" src="js/d3.v2.min.js?v=2.4.0-8-g07da06-dirty"></script>
        <script type="text/javascript" src="js/rdb_cubism.v1.js?v=2.4.0-8-g07da06-dirty"></script>
        <script type="text/javascript" src="js/xdate.js?v=2.4.0-8-g07da06-dirty"></script>
        <script type="text/javascript" src="js/chosen/chosen.jquery.min.js?v=2.4.0-8-g07da06-dirty"></script>
        <script type="text/javascript" src="cluster-min.js?v=2.4.0-8-g07da06-dirty"></script>
        <script type="text/javascript" src="js/codemirror/codemirror.js?v=2.4.0-8-g07da06-dirty"></script>
        <script type="text/javascript" src="js/codemirror/javascript.js?v=2.4.0-8-g07da06-dirty"></script>
        <script type="text/javascript" src="js/codemirror/matchbrackets.js?v=2.4.0-8-g07da06-dirty"></script>
        <script type="text/javascript" src="js/reql_docs.js?v=2.4.0-8-g07da06-dirty"></script>
        <script type="text/javascript" src="js/tableview.js?v=2.4.0-8-g07da06-dirty"></script>

    </head>
    <body>
        <div class="alert global_loading">Loading...</div>
    </body>
</html>

-1754934894 | 2024-04-17T11:20:37.276884

8787 / tcp

HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Wed, 17 Apr 2024 11:20:37 GMT
Content-Type: text/html
Content-Length: 1860
Last-Modified: Wed, 13 Apr 2022 04:33:49 GMT
Connection: keep-alive
ETag: "625652ad-744"
Accept-Ranges: bytes

30232284 | 2024-04-28T04:18:10.987794

9000 / tcp

HTTP/1.1 404 Not Found
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 28 Apr 2024 04:18:10 GMT
Content-Type: text/html; charset=UTF-8
Content-Length: 718
Connection: keep-alive

1770130064 | 2024-04-24T15:19:54.512203

9001 / tcp

HTTP/1.1 404 Not Found
Server: nginx/1.18.0 (Ubuntu)
Date: Wed, 24 Apr 2024 15:19:54 GMT
Content-Type: text/html; charset=UTF-8
Content-Length: 718
Connection: keep-alive


    <!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN">
    <html>
        <head>
            <title>Error: 404 Not Found</title>
            <style type="text/css">
              html {background-color: #eee; font-family: sans;}
              body {background-color: #fff; border: 1px solid #ddd;
                    padding: 15px; margin: 15px;}
              pre {background-color: #eee; border: 1px solid #ddd; padding: 5px;}
            </style>
        </head>
        <body>
            <h1>Error: 404 Not Found</h1>
            <p>Sorry, the requested URL <tt>&#039;http://103.52.17.22/&#039;</tt>
               caused an error:</p>
            <pre>Not found: &#039;/&#039;</pre>
        </body>
    </html>

979107551 | 2024-04-21T01:55:46.697822

9002 / tcp

HTTP/1.1 404 Not Found
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 21 Apr 2024 01:55:46 GMT
Content-Type: text/html; charset=UTF-8
Content-Length: 718
Connection: keep-alive


    <!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN">
    <html>
        <head>
            <title>Error: 404 Not Found</title>
            <style type="text/css">
              html {background-color: #eee; font-family: sans;}
              body {background-color: #fff; border: 1px solid #ddd;
                    padding: 15px; margin: 15px;}
              pre {background-color: #eee; border: 1px solid #ddd; padding: 5px;}
            </style>
        </head>
        <body>
            <h1>Error: 404 Not Found</h1>
            <p>Sorry, the requested URL <tt>&#039;http://103.52.17.22/&#039;</tt>
               caused an error:</p>
            <pre>Not found: &#039;/&#039;</pre>
        </body>
    </html>

1706010805 | 2024-04-23T16:26:24.154298

9100 / tcp

HTTP/1.1 400 Bad Request
Content-Type: text/plain; charset=utf-8
Connection: close

400 Bad Request
Prometheus Node Exporter:
  node_exporter_build_info:
    branch: HEAD
    goversion: go1.15.8
    revision: b597c1244d7bef49e6f3359c87a56dd7707f6719
    version: 1.1.2
  node_uname_info:
    domainname: (none)
    machine: x86_64
    nodename: kadin-06
    release: 5.4.0-26-generic
    sysname: Linux
    version: #30-Ubuntu SMP Mon Apr 20 16:58:30 UTC 2020
  node_network_info:
    lo:
      address: 00:00:00:00:00:00
      broadcast: 00:00:00:00:00:00
      device: lo
      operstate: unknown
    ens160:
      address: 00:50:56:82:ad:2e
      broadcast: ff:ff:ff:ff:ff:ff
      device: ens160
      duplex: full
      operstate: up

1422644275 | 2024-04-29T05:45:13.979827

28015 / tcp

ERROR: Received an unsupported protocol version. This port is for RethinkDB queries. Does your client driver version not match the server?\n\x00

103.52.17.22

Last Seen: 2024-04-29

Tags:

GeneralInformation

WebTechnologies

Vulnerabilities

OpenPorts

-1629709462 | 2024-04-22T08:31:03.377382
22 / tcp

OpenSSH8.2p1 Ubuntu-4ubuntu0.11

589765266 | 2024-04-28T23:34:10.212288
80 / tcp

nginx1.18.0

-566498224 | 2024-04-29T01:10:19.013219
443 / tcp

nginx1.18.0

530241483 | 2024-04-20T07:08:58.142544
8008 / tcp

1546267577 | 2024-04-27T20:03:08.772669
8081 / tcp

-1754934894 | 2024-04-17T11:20:37.276884
8787 / tcp

nginx1.18.0

30232284 | 2024-04-28T04:18:10.987794
9000 / tcp

nginx1.18.0

1770130064 | 2024-04-24T15:19:54.512203
9001 / tcp

nginx1.18.0

979107551 | 2024-04-21T01:55:46.697822
9002 / tcp

nginx1.18.0

1706010805 | 2024-04-23T16:26:24.154298
9100 / tcp

Prometheus Node Exporter1.1.2

1422644275 | 2024-04-29T05:45:13.979827
28015 / tcp

Products

Pricing

Contact Us

103.52.17.22

Last Seen: 2024-04-29

Tags:

GeneralInformation

WebTechnologies

Vulnerabilities

OpenPorts

-1629709462 | 2024-04-22T08:31:03.377382 22 / tcp

589765266 | 2024-04-28T23:34:10.212288 80 / tcp

-566498224 | 2024-04-29T01:10:19.013219 443 / tcp

530241483 | 2024-04-20T07:08:58.142544 8008 / tcp

1546267577 | 2024-04-27T20:03:08.772669 8081 / tcp

-1754934894 | 2024-04-17T11:20:37.276884 8787 / tcp

30232284 | 2024-04-28T04:18:10.987794 9000 / tcp

1770130064 | 2024-04-24T15:19:54.512203 9001 / tcp

979107551 | 2024-04-21T01:55:46.697822 9002 / tcp

1706010805 | 2024-04-23T16:26:24.154298 9100 / tcp

1422644275 | 2024-04-29T05:45:13.979827 28015 / tcp

Products

Pricing

Contact Us

-1629709462 | 2024-04-22T08:31:03.377382
22 / tcp

589765266 | 2024-04-28T23:34:10.212288
80 / tcp

-566498224 | 2024-04-29T01:10:19.013219
443 / tcp

530241483 | 2024-04-20T07:08:58.142544
8008 / tcp

1546267577 | 2024-04-27T20:03:08.772669
8081 / tcp

-1754934894 | 2024-04-17T11:20:37.276884
8787 / tcp

30232284 | 2024-04-28T04:18:10.987794
9000 / tcp

1770130064 | 2024-04-24T15:19:54.512203
9001 / tcp

979107551 | 2024-04-21T01:55:46.697822
9002 / tcp

1706010805 | 2024-04-23T16:26:24.154298
9100 / tcp

1422644275 | 2024-04-29T05:45:13.979827
28015 / tcp